This week we have a presentation about Secret Management with Hashicorp’s Vault, then articles & news on configBus, Twitter’s dynamic configuration system; Terraform with gitlab CI; monitoring with prometheus, for services and k8s, Kubernetes comparison between AWS, GCP, Azure, and DigitalOcean and Vuls as a Vulnerability Scanner.

HashiCorp’s Vault secures, stores, and controls access to tokens, passwords, certificates, API keys, and other secrets. It handles leasing, key revocation, key rolling and auditing. In this talk, you will have an overview of secret management in general, Vault’s concepts and an explanation on how to make use of Vault’s extensive feature set.

In this blog post, we will describe ConfigBus, Twitter’s dynamic configuration system. ConfigBus is made up of a database for storing configurations, a pipeline to distribute the configurations to machines in Twitter’s data centers, and APIs and tools to read and update them.

Kube eagle is a Prometheus exporter which exports various metrics of kubernetes pod resource requests, limits and it’s actual usages. It was created with the purpose to provide a better overview of your kubernetes cluster resources so that you can optimize the resource allocation.

In this tutorial, you can dramatically simplify the deployment and management of your Prometheus instances with the Prometheus Operator developed by CoreOS. Kirill Goltsman discusses how the Prometheus Operator could benefit your monitoring pipeline, and then he walks you through setting up a working Prometheus Operator to collect Prometheus-format metrics from your applications.

Vuls is an open-source, agentless vulnerability scanner written in Go. It automates security vulnerability analysis of the software installed on a system, which can be a burdensome task for system administrators to do manually in a production environment. Vuls uses multiple renowned vulnerability databases, such as the National Vulnerability Database (NVD). Light on resources, Vuls has the ability to scan multiple systems at once, and to send reports via email or Slack.